From 9b0371cf39236c7da57e46cb138bbccf3a689fb7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 15 Aug 2025 08:48:32 +0000 Subject: [PATCH] fix: Gemfile to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIVESTORAGE-11800135 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-11800112 --- Gemfile | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/Gemfile b/Gemfile index 9d247a50907..62e8632bbd7 100644 --- a/Gemfile +++ b/Gemfile @@ -1,13 +1,13 @@ source "https://rubygems.org" -gem "rails", "6.0.5.1" +gem "rails", "7.1.5.2" -gem "acts-as-taggable-on", "~> 9.0.1" +gem "acts-as-taggable-on", "~> 10.0.0" gem "acts_as_votable", "~> 0.13.2" gem "ahoy_matey", "~> 4.1.0" gem "airbrake", "~> 11.0.3" -gem "ancestry", "~> 4.2.0" -gem "audited", "~> 5.0.2" +gem "ancestry", "~> 4.3.0" +gem "audited", "~> 5.4.0" gem "autoprefixer-rails", "~> 8.2.0" gem "cancancan", "~> 3.4.0" gem "caxlsx", "~> 3.2.0" @@ -16,21 +16,21 @@ gem "ckeditor", "~> 4.3.0" gem "cocoon", "~> 1.2.15" gem "daemons", "~> 1.4.1" gem "dalli", "~> 2.7.11" -gem "delayed_job_active_record", "~> 4.1.7" +gem "delayed_job_active_record", "~> 4.1.8" gem "devise", "~> 4.8.1" gem "devise-security", "~> 0.16.0" gem "file_validators", "~> 3.0.0" gem "font-awesome-sass", "~> 5.15.1" # Remember to update vendor/assets/images/fontawesome when updating this gem gem "foundation-rails", "~> 6.6.2.0" gem "foundation_rails_helper", "~> 4.0.1" -gem "globalize", "~> 6.2.1" +gem "globalize", "~> 6.3.0" gem "globalize-accessors", "~> 0.3.0" gem "graphiql-rails", "~> 1.8.0" gem "graphql", "~> 1.12.14" gem "groupdate", "~> 6.1.0" gem "image_processing", "~> 1.12.2" gem "initialjs-rails", "~> 0.2.0.9" -gem "invisible_captcha", "~> 2.0.0" +gem "invisible_captcha", "~> 2.1.0" gem "jquery-fileupload-rails" gem "jquery-rails", "~> 4.5.0" gem "jquery-ui-rails", "~> 6.0.1" @@ -41,9 +41,9 @@ gem "omniauth-facebook", "~> 9.0.0" gem "omniauth-google-oauth2", "~> 1.0.1" gem "omniauth-rails_csrf_protection", "~> 1.0.1" gem "omniauth-twitter", "~> 1.4.0" -gem "paranoia", "~> 2.6.0" +gem "paranoia", "~> 2.6.3" gem "pg", "~> 1.4.3" -gem "pg_search", "~> 2.3.6" +gem "pg_search", "~> 2.3.7" gem "puma", "~> 4.3.12" gem "recipient_interceptor", "~> 0.3.1" gem "redcarpet", "~> 3.5.1"